home

dl.pocodoctor.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain dl.pocodoctor.com is registered by proxy through GODADDY.COM, LLC and was originally registered in November of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Denver, Colorado within the United States which resides on the Akamai Technologies, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Colorado, United States (US)

Create date:
Monday, November 17, 2014

Expires date:
Thursday, November 17, 2016

Updated date:
Thursday, November 19, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.,US

Root domain:
pocodoctor.com

Whois:
2 pocodoctor.com records

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Solimba.Investen (M), PUP.PIGATERS (M), PUP.Solimba.Prelasan.Bundler (M), PUP.Solimba.POPELERS (M), PUP.Solimba.CAROSENT (M), PUP.Solimba (M), PUP (M)
98.00%

Microsoft Security Essentials
Worm:Win32/NeksMiner.A
2.00%

F-Secure
Application:W32/Generic.70053c248f!Online
2.00%

The domain dl.pocodoctor.com has been seen to resolve to the following 61 IP addresses.

23.219.88.57
a23-219-88-57.deploy.static.akamaitechnologies.com
September 18, 2016

23.219.88.64
a23-219-88-64.deploy.static.akamaitechnologies.com
September 18, 2016

104.96.220.202
a104-96-220-202.deploy.static.akamaitechnologies.com
July 27, 2016

104.96.220.235
a104-96-220-235.deploy.static.akamaitechnologies.com
July 27, 2016

104.96.221.66
a104-96-221-66.deploy.static.akamaitechnologies.com
July 26, 2016

104.96.221.82
a104-96-221-82.deploy.static.akamaitechnologies.com
July 26, 2016

65.158.47.90
June 6, 2016

23.201.103.136
a23-201-103-136.deploy.static.akamaitechnologies.com
May 25, 2016

23.201.103.153
a23-201-103-153.deploy.static.akamaitechnologies.com
May 25, 2016

104.96.220.146
a104-96-220-146.deploy.static.akamaitechnologies.com
May 17, 2016

104.96.220.112
a104-96-220-112.deploy.static.akamaitechnologies.com
May 15, 2016

104.96.220.91
a104-96-220-91.deploy.static.akamaitechnologies.com
May 15, 2016

65.158.47.40
April 19, 2016

65.158.47.9
April 19, 2016

23.0.160.98
a23-0-160-98.deploy.static.akamaitechnologies.com
April 16, 2016

23.0.160.90
a23-0-160-90.deploy.static.akamaitechnologies.com
April 16, 2016

23.15.9.144
a23-15-9-144.deploy.static.akamaitechnologies.com
April 14, 2016

23.15.9.137
a23-15-9-137.deploy.static.akamaitechnologies.com
April 14, 2016

23.220.148.56
a23-220-148-56.deploy.static.akamaitechnologies.com
April 11, 2016

23.220.148.10
a23-220-148-10.deploy.static.akamaitechnologies.com
April 11, 2016

23.15.7.113
a23-15-7-113.deploy.static.akamaitechnologies.com
April 2, 2016

23.15.7.120
a23-15-7-120.deploy.static.akamaitechnologies.com
April 2, 2016

65.158.47.105
April 1, 2016

65.158.47.57
April 1, 2016

184.51.126.75
a184-51-126-75.deploy.static.akamaitechnologies.com
March 4, 2016

23.72.83.67
a23-72-83-67.deploy.static.akamaitechnologies.com
March 3, 2016

23.72.83.57
a23-72-83-57.deploy.static.akamaitechnologies.com
March 3, 2016

96.16.12.106
a96-16-12-106.deploy.akamaitechnologies.com
March 1, 2016

96.16.12.115
a96-16-12-115.deploy.akamaitechnologies.com
March 1, 2016

23.15.8.211
a23-15-8-211.deploy.static.akamaitechnologies.com
February 29, 2016

 
Showing 30 of 61 IP Addresses

File downloads found at URLs served by dl.pocodoctor.com.

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../Microsoft Office Professional.exe  (00ecf4a1738f201e77b40487fcbb31ba)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../manycam.exe  (d5645206771af6c8beeaaf1bac644a56)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../xwidget.exe  (d116af84ea867b21320754268f5bb0e3)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../Microsoft Word.exe  (f01a6b24b0ad1c361614211f7d20d349)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../virtual-dj-studio.exe  (0aea7d35da4aff8cf3e6d694e71bca54)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../google-chrome.exe  (aa39275e510011e450c777c2e887a71d)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../Google Chrome.exe  (354455616a9f6d1176bfdb583b6d226e)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../uTorrent.exe  (ad245cc0c09f0ff92d3377c16cd1f8c9)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../microsoft-visual-studio.exe  (9046ea2d9d477456c05fcb15957f2504)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/3.2.75/.../Outlook Express.exe  (731b8cb2e5daf40daec936f1f0596908)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../autocad.exe  (213ceb72a4745526edcf0877d2ba09b1)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../setup.exe  (7bc6eab88ea9e6268b0aff816dcfa5c1)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../Supremo Remote Desktop.exe  (894d9d97f27542f86fa5e5d0beb78259)

1 / 68      (Malware)
http://dl.pocodoctor.com/n/.../Windows 7 USB DVD Download Tool.exe  (7bd1ec33ec1d97d182bc62d9245b6da8)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../SmadAv.exe  (01b19b7b9522131a264b16d54be721d0)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../minecraft.exe  (e33d225ddae0f8bf7102cea9d25da01e)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../aTube Catcher.exe  (3d5ed049441bd812816f4daf1408c110)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../Flipagram para PC.exe  (e99f4e0c1b0c1148c0a6f8089b4bb8c3)

2 / 68      (false positives)
http://dl.pocodoctor.com/n/.../alberto gambino - y toda esa mierda (200....exe  (wrar420.exe)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../grand-theft-auto-vice-city-ultimate-vice-city-mod.exe  (8bf5fba712ed962693953a3ab45e5530)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/3.2.106/.../Winzip.exe  (8afe72e1e2bbe46f05bbfb886742745a)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../Microsoft Security Essentials.exe  (microsoft_security_essentials.exe)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../microsoft-excel-viewer.exe  (d80d4deab673ebb00c755823255543a4)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../quikr.exe  (b8ae751671b645d19efd3ad522b7a12a)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../PouetChess.exe  (0b6689d936d5a194e89e158b6c098930)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../Avast! Free Antivirus.exe  (0c212a4f8e277fdcf05a420c43ac3bf0)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../winrar.exe  (981ebbd18c7ad0920cb584be610abf96)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../microsoft-word.exe  (ef6881909c79dac684831d899072e1f5)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../uTorrent.exe  (cdd45bf7cb175a2b25d2dd4c6d3ed878)

1 / 68      (Adware)
http://dl.pocodoctor.com/n/.../Everest Ultimate Edition.exe  (72a748e2db9cc90c2abfd27960f47a31)

 
Latest 30 of 706 download URLs

The following 395 files have been seen to comunicate with dl.pocodoctor.com in live environments.

TCP » 184.26.143.122:80
tmp8b8e.exe

TCP » 184.51.126.99:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.26.143.129:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.112:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.26.143.122:80
toolbarupdater.exe (ToolbarU Application by AVG Secure Search)

TCP » 184.51.126.75:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.96.220.91:80
kometa.exe (Kometa by Kometa Authors)

TCP » 184.26.143.122:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.99:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 104.96.220.91:443
beamrise.exe (Beamrise by The Beamrise Authors)

TCP » 23.15.9.16:443
beamrise.exe (Beamrise by The Beamrise Authors)

TCP » 184.26.143.122:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.99:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.26.143.129:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.75:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 72.246.43.26:80
browser.exe (speed browser by Fast Applications)

TCP » 104.96.220.112:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.154:80
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.112:443
UCBrowser.exe (UC Browser by UCWeb)

TCP » 184.51.126.75:443
messengertime.exe

 
Latest 20 of 476 files

URL:
http://dl.pocodoctor.com/

Web server:
AkamaiGHost

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.